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Claims 
I claim: 

1 1. A method comprising: 

2 using a biometric generator to obtain a biometric signature of an individual; 

3 bonding the biometric signature to a data storage device; 

4 requiring the biometric signature of the individual to access a data record stored 

5 on the data storage device; 

6 controlling an access to the data storage device by using a data console, the data 

7 console being a secure input/output device; 

8 maintaining a credibility record associated with the data record; 

9 using a metadata query to request a disclosure of the data record; and 
10 allowing the individual to control the disclosure of the data record, 
11 

12 2. The method of claim 1 further comprising: 

13 generating an encryption key based on the biometric signature of the individual; 

14 and 

15 using the encryption key to encrypt the data record. 
16 

17 3. The method of claim 1 further comprising: 

18 obtaining the biometric signature of a session operator, the session operator 

19 operating the biometric generator; and 

20 recording a session history in the credibility record. 
21 
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1 4. The method of claim 3 wherein the session history comprises: 

2 a unique identifier of the biometric generator; 

3 the biometric signature of the session operator; and 

4 a session time. 
5 

6 5. The method of claim 3 further comprising preventing the session operator from operating 

7 the biometric generator when the biometric signature of the session operator does not 

8 match the biometric signature of an authorized operator. 
9 

10 6. The method of claim 1 further comprising: 

1 1 obtaining the biometric signature of a console operator, the console operator being 

12 a person operating the data console; and 

13 recording an access history in the credibility record. 
14 

15 7. The method of claim 6 wherein the access history comprises: 

16 an unique identifier of the data console; 

17 the biometric signature of the console operator; 

18 an access type; and 

19 an access time. 
20 

21 8. The method of claim 6 further comprising: 

22 requiring the console operator to enter an authorization code prior to allowing the 

23 console operator to access the data record; 
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1 preventing the console operator from accessing the data record when the console 

2 operator does not enter a proper authorization code; and 

3 storing the authorization code in the credibility record, 
4 

5 9. The method of claim 1 wherein using a metadata query further comprises: 

6 evaluating of the data record without disclosing the data record to a querying 

7 party; and 

8 evaluating of the data record without disclosing the metadata query to the 

9 individual. 
10 

1 1 10. The method of claim 1 wherein allowing the individual to control the disclosure of the 

12 data record further comprises: 

13 allowing the individual to deny a specific data query; 

14 allowing the individual to deny the metadata query; 

15 allowing the individual to authorize the disclosure of the data record; and 

16 allowing the individual to authorize a partial disclosure of the data record. 
17 

18 

19 11. The method of claim 1 further comprising recording a query history in the credibility 

20 record. 
21 

22 12. The method of claim 1 1 wherein Uie query history comprises: 

23 a data query authorization code; 
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1 an identification of the querying party; 

2 the unique identifier of the data console; 

3 the biometric signature of the console operator; and 

4 a query tinfie. 
5 

6 13. The method of claim 1 further comprising: 

7 assigning a credibility factor to the data record based on an evaluation of the 

8 credibility record; 

9 changing the credibility factor when an element in the credibility record is 

10 compromised; and 

1 1 sending a broadcast notice associated with a change in the credibility factor. 
12 

13 14. An apparatus for private information access rights management comprising: 

14 a biometric generator to analyze a unique biological characteristic of an individual 

15 and to generate a biometric signature for the individual wherein the biometric signature is 

16 reliably replicable; 

17 a data storage device to store a data record wherein the data record belongs to the 

18 individual and the data storage device is locked by the biometric signature; and 

19 a data console to control an access to the data record wherein the data console is a 

20 secure data input/output device and the access comprises one of a data query and a data 

21 entry. 
22 

23 15. The apparatus of claim 14 further comprising a generator authorization procedure. 
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1 

2 16. The apparatus of claim 15 further comprising a generator operator biometric signature 

3 match. 
4 

5 17. The apparatus of claim 14 further comprising a data console authorization procedure. 
6 

7 18. The apparatus of claim 17 further comprising an authorization code. 
8 

9 19. The apparatus of claim 14 further comprising an authorization to disclose the data record 
10 wherein the individual controls the authorization to disclose the data record. 

11 

12 20. The apparatus of claim 14 further comprising a credibility record associated with the data 

13 record. 
14 

15 21. The apparatus of claim 20 wherein the credibility record comprises a session credibility 

16 factor. 
17 

18 22. The apparatus of claim 20 wherein the credibility record comprises a biometric operator 

19 credibility factor. 
20 

21 23. The apparatus of claim 20 wherein the credibility record comprises an access credibility 

22 factor. 
23 
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1 24. The apparatus of claim 20 wherein the credibility record comprises a data console 

2 operator credibility factor. 
3 

4 25. An article of manufacture comprising: 

5 a machine-accessible medium including content that, when accessed by a 

6 machine, causes the machine to: 

7 generate a biometric signature of an individual; 

8 bond the biometric signature to a data storage device; 

9 require the biometric signature of the individual to access a data record stored on 

10 the data storage device; 

1 1 control an access to the data storage device by a data console, wherein the data 

12 console is a secure input/output device; 

13 maintain a credibility record associated with the data record; 

14 use a metadata query to request a disclosure of the data record; and 

15 allow the individual to control the disclosure of the data record. 
16 

17 26. The article of manufacture of claim 25 further comprising: 

18 a machine-accessible medium including content that, when accessed by a 

19 machine, causes the machine to: 

20 generate an encryption key based on the biometric signature of the individual; 

21 and 

22 use the encryption key to encrypt the data record. 
23 
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1 27. The article of manufacture of claim 25 further comprising: 

2 a machine-accessible medium including content that, when accessed by a 

3 machine, causes the machine to: 

4 generate the biometric signature of a session operator, wherein the session 

5 operator operates the biometric generator; and 

6 record a session history in the credibility record. 
7 

8 28. The content of the machine-accessible medium of the article of manufacture of claim 27 

9 wherein the session history comprises: 

10 a unique identifier of the biometric generator; 

11 the biometric signature of the session operator; and 

12 a session time. 
13 

14 29. The article of manufacture of claim 27 further comprising: 

15 a machine-accessible medium including content that, when accessed by a 

16 machine, causes the machine to prevent an operation of the biometric generator by the 

17 session operator when the biometric signature of the session operator does not match the 

18 biometric signature of an authorized operator. 
19 

20 30. The article of manufacture of claim 25 further comprising: 

21 a machine-accessible medium including content that, when accessed by a 

22 machine, causes the machine to: 
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1 generate the biometric signature of a console operator, wherein the console 

2 operator operates the data console; and 

3 record an access history in the credibility record. 
4 

5 31. The content of the machine-accessible medium of the article of manufacture of claim 30 

6 wherein the access history comprises: 

7 an unique identifier of the data console; 

8 the biometric signature of the console operator; 

9 an access type; and 
10 an access time. 

11 

12 32. The article of manufacture of claim 30 further comprising: 

13 a machine-accessible medium including content that, when accessed by a 

14 machine, causes the machine to: 

15 require the console operator to enter an authorization code to access the data 

16 record; 

17 prevent an access of the data record when the console operator does not enter a 

18 proper authorization code; and 

19 store the authorization code in the credibility record. 
20 

21 33. The article of manufacture of claim 25 further comprising: 

22 a machine-accessible medium including content that, when accessed by a 

23 machine, causes the machine to: 
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1 perform an evaluation the data record wherein the data record is not disclosed to a 

2 querying party; and 

3 perform an evaluation of the data record wherein the metadata query is not 

4 disclosed to the individual. 

5 34, The article of manufacture of claim 25 further comprising: 

6 a machine-accessible medium including content that, when accessed by a 

7 machine, causes the machine to: 

8 allow the individual to deny a specific data query; 

9 allow the individual to deny the metadata query; 

10 allow the individual to authorize the disclosure of the data record; and 

1 1 allow the individual to authorize a partial disclosure of the data record. 
12 

13 35. The article of manufacture of claim 25 further comprising: 

14 a machine-accessible medium including content that, when accessed by a 

15 machine, causes the machine to record a query history in the credibility record. 
16 

17 36- The content of the machine-accessible medium of the article of manufacture of claim 35 

18 wherein the query history comprises: 

19 a data query authorization code; 

20 an identification of the querying party; 

21 the unique identifier of the data console; 

22 the biometric signature of the console operator; and 

23 a query time. 
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1 

2 37. The article of manufacture of claim 25 further comprising: 

3 a machine-accessible medium including content that, when accessed by a 

4 machine, causes the machine to: 

5 assign a credibility factor to the data record based on an evaluation of the 

6 credibility record; 

7 change the credibility factor when an element in the credibility record is 

8 compromised; and 

9 send a broadcast notice associated with a change in the credibility factor. 



